I am looking for a solution to provide external user management for our application using CA Single Sign-on.
Our application is designed to be able to integrate with any standard OpenId Connect Provider.
So, I am looking for a way to setup an OpenId Connect Provider backed by CA Single Sign-on.
I find you have two products: “CA API Gateway” and “CA API Management OAuth Toolkit”.
They can be used to setup an OpenId Connect Provider.
“CA API Gateway” also supports to be configured to authenticate against CA Single Sign-on.
My understanding is that, we can install “CA Single Sign-on”, “CA API Gateway” and “CA API Management OAuth Toolkit” together. Then after some configuration, CA API Gateway becomes a OpenId Connect provider backed by CA Single Sign-on.
Is my understanding correct? If it is yes,
Moving to relevant community.
In the next release of SSO, 12.7 SSO will be able to act as an OpenID.Connect authorization provider. This allwos organizations to use Native SSO OpenID.Connect and Oauth capabilities or use the APIM solution for Oauth and OpenId.connect like you stated.
more information on this upcoming release is available in the Ca SSO project at http://validate.ca.com including a CA SSO 12.7 pre-GA kit that you can download to see the new SSO OIDC in action.